Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2009-5064

Overview

Vulnerability Score 6.9 6.9
CVE Id CVE-2009-5064
Last Modified 18 Jan 2012 10:44:52
Published 30 Mar 2011 06:55:01
Confidentiality Impact COMPLETE COMPLETE
Integrity Impact COMPLETE COMPLETE
Availability Impact COMPLETE COMPLETE
Access Vector LOCAL
Access Complexity MEDIUM
Authentication NONE

CVE-2009-5064

Summary

** DISPUTED ** ldd in the GNU C Library (aka glibc or libc6) 2.13 and earlier allows local users to gain privileges via a Trojan horse executable file linked with a modified loader that omits certain LD_TRACE_LOADED_OBJECTS checks. NOTE: the GNU C Library vendor states "This is just nonsense. There are a gazillion other ways to introduce code if people are downloading arbitrary binaries and install them in appropriate directories or set LD_LIBRARY_PATH etc."

Vulnerable Systems

Application

  • Gnu Glibc 1.00

  • Gnu Glibc 1.01

  • Gnu Glibc 1.02

  • Gnu Glibc 1.03

  • Gnu Glibc 1.04

  • Gnu Glibc 1.05

  • Gnu Glibc 1.06

  • Gnu Glibc 1.07

  • Gnu Glibc 1.08

  • Gnu Glibc 1.09

  • Gnu Glibc 1.09.1

  • Gnu Glibc 2.0

  • Gnu Glibc 2.0.1

  • Gnu Glibc 2.0.2

  • Gnu Glibc 2.0.3

  • Gnu Glibc 2.0.4

  • Gnu Glibc 2.0.5

  • Gnu Glibc 2.0.6

  • Gnu Glibc 2.1

  • Gnu Glibc 2.1.1

  • Gnu Glibc 2.1.1.6

  • Gnu Glibc 2.1.2

  • Gnu Glibc 2.1.3


References

MISC - https://bugzilla.redhat.com/show_bug.cgi?id=682998

MISC - https://bugzilla.redhat.com/show_bug.cgi?id=531160

MLIST - [oss-security] 20110308 Re: ldd can execute an app unexpectedly

MLIST - [oss-security] 20110307 Re: ldd can execute an app unexpectedly

MLIST - [oss-security] 20110307 ldd can execute an app unexpectedly

MISC - http://www.catonmat.net/blog/ldd-arbitrary-code-execution/

MISC - http://reverse.lostrealm.com/protect/ldd.html

MLIST - [oss-security] 20110307 Re: CVE Request -- logrotate -- nine issues

REDHAT - RHSA-2011:1526

Related Patches

Red Hat 2012:0125-01 RHSA Moderate: glibc security and bug fix update for RHEL 4 x86

Red Hat 2012:0125-01 RHSA Moderate: glibc security and bug fix update for RHEL 4 x86_64

Red Hat 2012:0126-01 RHSA Moderate: glibc security update for RHEL 5 x86

Red Hat 2012:0126-01 RHSA Moderate: glibc security update for RHEL 5 x86_64


Last Updated: 27 May 2016 10:57:20